$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA5A2/3E16416898F611EEBBF1F417C4F9AE02/D61299F2D8C011EFB41E1319C4F9AE02.roa File: D61299F2D8C011EFB41E1319C4F9AE02.roa (raw, json) Hash identifier: I8tswjuoYQFOiqyz6Kcs03FRJHU5DGwueNL9D41SX9s= Subject key identifier: C3:1C:DD:C8:A4:40:1F:99:19:D9:FD:7F:D8:19:84:59:A7:46:5E:B9 Certificate issuer: /CN=A91FA5A2/serialNumber=5B59FCB65341FD33789BFBAFA9637DF0CE404DAB Certificate serial: 01E6 Authority key identifier: 5B:59:FC:B6:53:41:FD:33:78:9B:FB:AF:A9:63:7D:F0:CE:40:4D:AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1n8tlNB_TN4m_uvqWN98M5ATas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA5A2/3E16416898F611EEBBF1F417C4F9AE02/D61299F2D8C011EFB41E1319C4F9AE02.roa Signing time: Mon 01 Jun 2026 04:34:38 +0000 ROA not before: Mon 01 Jun 2026 04:34:38 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 140577 IP address blocks: 168.100.128.0/19 maxlen: 19 168.100.128.0/20 maxlen: 20 168.100.128.0/21 maxlen: 21 168.100.136.0/21 maxlen: 24 168.100.144.0/20 maxlen: 20 168.100.146.0/23 maxlen: 23 168.100.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA5A2/3E16416898F611EEBBF1F417C4F9AE02/W1n8tlNB_TN4m_uvqWN98M5ATas.crl rsync://rpki.apnic.net/member_repository/A91FA5A2/3E16416898F611EEBBF1F417C4F9AE02/W1n8tlNB_TN4m_uvqWN98M5ATas.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1n8tlNB_TN4m_uvqWN98M5ATas.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 03:38:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA5A2, serialNumber=5B59FCB65341FD33789BFBAFA9637DF0CE404DAB Validity Not Before: Jun 1 04:34:38 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a1d0bde-2952 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1e:f6:90:88:43:36:59:fd:22:59:d2:e6:be: 62:4a:44:52:e7:df:05:21:1c:6e:fc:4e:d0:d6:77: 8e:da:01:78:fe:3f:13:d7:e8:99:6a:19:eb:c1:20: 08:f5:fb:28:29:07:9c:84:5a:24:30:a3:45:9b:eb: eb:bc:d0:ea:98:5a:7b:12:c1:41:e4:e7:a0:37:58: b7:b5:f4:c1:c7:37:d2:23:f9:2e:92:b2:54:8b:be: bb:ef:9a:83:0d:dc:24:53:14:0e:77:d5:e4:c9:34: 28:74:e4:7a:e6:23:f6:8c:35:f6:a9:2c:6f:da:75: 94:6f:aa:7b:db:31:17:6e:a5:69:11:31:91:1a:21: 2f:e3:bf:a0:2d:3d:7f:8c:b1:5b:54:77:88:52:29: 83:67:f3:1e:33:3a:c0:ff:82:38:a1:71:c3:d2:46: 3a:54:5a:96:09:ea:48:c9:a2:0a:ac:d3:33:f8:a1: b5:04:cd:54:50:b3:3a:0c:c1:0a:b4:59:f4:4d:75: 5e:ce:e5:55:56:5c:5d:94:b4:a1:6d:d2:cc:62:30: 8b:ef:3d:5f:d6:f3:e3:97:0f:48:d5:67:eb:9d:71: ae:56:3f:e8:df:93:fd:0e:54:23:de:95:f4:40:e5: b3:30:ff:02:6e:d0:92:44:15:91:ed:4f:93:92:ac: 15:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:1C:DD:C8:A4:40:1F:99:19:D9:FD:7F:D8:19:84:59:A7:46:5E:B9 X509v3 Authority Key Identifier: keyid:5B:59:FC:B6:53:41:FD:33:78:9B:FB:AF:A9:63:7D:F0:CE:40:4D:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA5A2/3E16416898F611EEBBF1F417C4F9AE02/W1n8tlNB_TN4m_uvqWN98M5ATas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1n8tlNB_TN4m_uvqWN98M5ATas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA5A2/3E16416898F611EEBBF1F417C4F9AE02/D61299F2D8C011EFB41E1319C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 168.100.128.0/19 Signature Algorithm: sha256WithRSAEncryption 0e:61:61:a8:5b:03:55:84:2e:97:fd:4c:6d:8a:2d:7a:d2:9b: 3f:7a:87:7e:93:41:fd:09:72:60:6c:05:cf:d5:e6:5f:d2:f0: 57:4d:51:1c:ed:b1:91:2c:c0:64:07:d2:3d:e6:e7:88:b2:b5: 91:4f:81:ee:50:c3:c0:64:30:f8:0e:e2:20:b8:ef:8c:ab:1b: a5:7c:f1:c2:7a:86:5d:2f:82:d2:30:9a:dd:ac:d1:7d:67:da: fc:e2:f6:a8:ec:06:00:d9:19:05:3e:62:3a:0e:05:76:15:92: cf:16:8f:67:95:8b:81:20:4e:ee:b3:17:ce:cd:4e:cc:5c:35: 25:de:77:f7:7c:85:74:5e:a5:f4:86:bc:7e:08:d9:ac:e6:87: fd:1e:67:ac:89:7a:4e:82:bd:2f:7b:4d:e7:50:d4:d6:37:9e: 06:db:98:78:57:44:1f:46:e5:6d:e2:e1:31:2a:ab:0c:af:07: b1:c6:5c:58:2e:ec:89:e3:8d:d4:f1:ba:3e:d5:81:ef:4e:1e: b1:d9:33:d6:e2:a5:97:4b:9b:14:1d:ab:4b:21:42:0c:02:49: 8f:c0:eb:16:d6:42:10:56:54:f9:5d:61:40:ae:50:46:9c:d9: 26:d7:2e:a9:d9:9c:03:82:71:32:e4:dc:6e:85:b5:ed:5f:07: 7f:99:81:a6 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1QTIxMTAvBgNVBAUTKDVCNTlGQ0I2NTM0MUZEMzM3ODlCRkJBRkE5NjM3REYw Q0U0MDREQUIwHhcNMjYwNjAxMDQzNDM4WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFkMGJkZS0yOTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyB72kIhDNln9IlnS5r5iSkRS598FIRxu/E7Q1neO2gF4/j8T1+iZahnrwSAI 9fsoKQechFokMKNFm+vrvNDqmFp7EsFB5OegN1i3tfTBxzfSI/kukrJUi76775qD DdwkUxQOd9XkyTQodOR65iP2jDX2qSxv2nWUb6p72zEXbqVpETGRGiEv47+gLT1/ jLFbVHeIUimDZ/MeMzrA/4I4oXHD0kY6VFqWCepIyaIKrNMz+KG1BM1UULM6DMEK tFn0TXVezuVVVlxdlLShbdLMYjCL7z1f1vPjlw9I1WfrnXGuVj/o35P9DlQj3pX0 QOWzMP8CbtCSRBWR7U+TkqwVWwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMMc3cik QB+ZGdn9f9gZhFmnRl65MB8GA1UdIwQYMBaAFFtZ/LZTQf0zeJv7r6ljffDOQE2r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTVBMi8zRTE2NDE2ODk4 RjYxMUVFQkJGMUY0MTdDNEY5QUUwMi9XMW44dGxOQl9UTjRtX3V2cVdOOThNNUFU YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1cxbjh0bE5CX1RONG1fdXZxV045OE01QVRhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE1QTIvM0UxNjQxNjg5OEY2MTFFRUJCRjFGNDE3QzRGOUFFMDIvRDYxMjk5RjJE OEMwMTFFRkI0MUUxMzE5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFqGSAMA0GCSqGSIb3DQEBCwUAA4IBAQAOYWGoWwNVhC6X/Uxtii16 0ps/eod+k0H9CXJgbAXP1eZf0vBXTVEc7bGRLMBkB9I95ueIsrWRT4HuUMPAZDD4 DuIguO+MqxulfPHCeoZdL4LSMJrdrNF9Z9r84vao7AYA2RkFPmI6DgV2FZLPFo9n lYuBIE7usxfOzU7MXDUl3nf3fIV0XqX0hrx+CNms5of9HmesiXpOgr0ve03nUNTW N54G25h4V0QfRuVt4uExKqsMrwexxlxYLuyJ443U8bo+1YHvTh6x2TPW4qWXS5sU HatLIUIMAkmPwOsW1kIQVlT5XWFArlBGnNkm1y6p2ZwDgnEy5NxuhbXtXwd/mYGm -----END CERTIFICATE-----Generated at Sat Jun 13 15:11:06 2026 by rpki-client